Legal claims defining the scope of protection. Each claim is shown in both the original legal language and a plain English translation.
1. A non-transitory computer-readable medium embodying program code executable in at least one computing device that, when executed by the at least one computing device, causes the at least one computing device to at least: generate a policy strength score for a plurality of configuration parameters for a particular instance of managed devices within a management service; identify a categorization of the particular instance within the management service; identify at least one cluster of instances within the management service sharing the categorization, the at least one cluster identified based upon at least one respective policy strength score; and in response to the policy strength score for the particular instance failing to be within a respective cluster range of the at least one cluster, generate an action for the particular instance to cause the particular instance to join a particular cluster, wherein the action comprises a recommended action to identity and modify a particular security setting associated with the particular instance of managed devices, and the modification causes an adjustment to the policy strength score such that the policy strength score is within the respective cluster range of the at least one cluster.
This invention relates to cybersecurity management in cloud or enterprise environments, specifically addressing the challenge of ensuring consistent security policies across groups of managed devices. The system evaluates security configurations by generating a policy strength score for each instance of managed devices within a management service. The score quantifies the robustness of security settings based on multiple configuration parameters. The system then categorizes instances and identifies clusters of instances that share similar categorizations and policy strength scores. If an instance's policy strength score falls outside the acceptable range of its cluster, the system generates a corrective action. This action recommends modifying a specific security setting to align the instance's policy strength score with the cluster's range, thereby improving security consistency. The solution automates the detection of misconfigured instances and provides targeted recommendations to enhance security posture without manual intervention. This approach ensures that all instances within a cluster maintain comparable security standards, reducing vulnerabilities and compliance risks.
2. The non-transitory computer-readable medium of claim 1 , wherein the policy strength score is based upon a plurality of security settings that are enforced on behalf of the management service by a management component installed on a plurality of managed devices associated with the particular instance.
3. The non-transitory computer-readable medium of claim 2 , wherein the plurality of security settings comprise at least one of: a network enabled setting, a compromised device setting, a content filtering setting, a data backup setting, a data loss prevention setting, a geofencing setting, a setting defining at least one approved application for opening documents, an offline access setting, an email permission setting, a clipboard permission setting, a camera permission setting, a screenshot permission setting, a user authentication type setting, a passcode type setting, a setting defining a maximum number of failed authentication attempts, a maximum passcode age setting, a setting defining a maximum period between communications with the management service, or a password complexity setting.
4. The non-transitory computer-readable medium of claim 3 , wherein the policy strength score is calculated by assigning respective scores to a respective value for each of the plurality of security settings in the particular instance within the management service.
5. The non-transitory computer-readable medium of claim 4 , wherein the policy strength score is calculated by assigning a respective weight to the respective scores for the respective value for each of the plurality of security settings and summing the respective scores.
A system for evaluating security policies in a computing environment calculates a policy strength score to assess the effectiveness of security configurations. The system analyzes multiple security settings, each with a configurable value, and assigns a respective score to each value based on its security impact. These scores are then weighted according to their importance and summed to produce a composite policy strength score. The weights may be adjusted to prioritize certain security settings over others, allowing for customization based on organizational needs. This approach provides a quantitative measure of security posture, enabling organizations to identify weak points and improve their defenses. The system may also compare the calculated score against predefined thresholds to determine compliance or risk levels. By automating the evaluation of security settings, the system reduces manual effort and ensures consistent application of security policies across different systems. The method supports dynamic adjustments to weights and scores, allowing for continuous improvement in security assessments.
6. The non-transitory computer-readable medium of claim 1 , wherein the at least one cluster of instances are generated by identifying respective instances having respective policy strength scores within a respective cluster range.
7. The non-transitory computer-readable medium of claim 1 , wherein the policy strength score is generated based on identifying the particular instance of managed devices within the management service from a plurality of inputs received by a management console user interface.
8. A system comprising: at least one computing device; and a management service executable by the at least one computing device, the management service causing the at least one computing device to at least: generate a policy strength score for a plurality of configuration parameters for a particular instance of managed devices within a management service; identify a categorization of the particular instance within the management service; identify at least one cluster of instances within the management service sharing the categorization, the at least one cluster identified based upon at least one respective policy strength score; and in response to the policy strength score for the particular instance failing to be within a respective cluster range of the at least one cluster, generate an action for the particular instance to cause the particular instance to join a particular cluster, wherein the action comprises a recommended action to identity and modify a particular security setting associated with the particular instance of managed devices, and the modification causes an adjustment to the policy strength score such that the policy strength score is within the respective cluster range of the at least one cluster.
9. The system of claim 8 , wherein the policy strength score is based upon a plurality of security settings that are enforced on behalf of the management service by a management component installed on a plurality of managed devices associated with the particular instance.
10. The system of claim 9 , wherein the plurality of security settings comprise at least one of: a network enabled setting, a compromised device setting, a content filtering setting, a data backup setting, a data loss prevention setting, a geofencing setting, a setting defining at least one approved application for opening documents, an offline access setting, an email permission setting, a clipboard permission setting, a camera permission setting, a screenshot permission setting, a user authentication type setting, a passcode type setting, a setting defining a maximum number of failed authentication attempts, a maximum passcode age setting, a setting defining a maximum period between communications with the management service, or a password complexity setting.
11. The system of claim 10 , wherein the policy strength score is calculated by assigning respective scores to a respective value for each of the plurality of security settings in the particular instance within the management service.
12. The system of claim 10 , wherein the policy strength score is calculated by assigning a respective weight to the respective scores for the respective value for each of the plurality of security settings and summing the respective scores.
13. The system of claim 8 , wherein the at least one cluster of instances are generated by identifying respective instances having respective policy strength scores within a respective cluster range.
The invention relates to a system for organizing and analyzing data instances based on policy strength scores. The system addresses the challenge of efficiently grouping similar data instances to improve decision-making, compliance, or risk assessment in domains like cybersecurity, finance, or regulatory compliance. The system generates clusters of instances by evaluating each instance's policy strength score, which quantifies adherence to predefined rules or policies. Instances with scores falling within a specified range are grouped into the same cluster. This clustering method ensures that instances with similar compliance levels or risk profiles are analyzed together, enabling more accurate trend detection and policy enforcement. The system may also include mechanisms for adjusting cluster ranges dynamically based on evolving policies or data distributions. By automating the clustering process, the system reduces manual effort and improves consistency in policy enforcement across large datasets. The invention enhances the ability to monitor and enforce policies effectively, particularly in environments where compliance requirements are complex or frequently updated.
14. The system of claim 8 , wherein the policy strength score is generated based on identifying the particular instance of managed devices within the management service from a plurality of inputs received by a management console user interface.
15. A method comprising: generating a policy strength score for a plurality of configuration parameters for a particular instance of managed devices within a management service; identifying a categorization of the particular instance within the management service; identifying at least one cluster of instances within the management service sharing the categorization, the at least one cluster identified based upon at least one respective policy strength score; and in response to the policy strength score for the particular instance failing to be within a respective cluster range of the at least one cluster, generating an action for the particular instance to cause the particular instance to join a particular cluster, wherein the action comprises a recommended action to identity and modify a particular security setting associated with the particular instance of managed devices, and the modification causes an adjustment to the policy strength score such that the policy strength score is within the respective cluster range of the at least one cluster.
16. The method of claim 15 , wherein the policy strength score is based upon a plurality of security settings that are enforced on behalf of the management service by a management component installed on a plurality of managed devices associated with the particular instance.
17. The method of claim 16 , wherein the plurality of security settings comprise at least one of: a network enabled setting, a compromised device setting, a content filtering setting, a data backup setting, a data loss prevention setting, a geofencing setting, a setting defining at least one approved application for opening documents, an offline access setting, an email permission setting, a clipboard permission setting, a camera permission setting, a screenshot permission setting, a user authentication type setting, a passcode type setting, a setting defining a maximum number of failed authentication attempts, a maximum passcode age setting, a setting defining a maximum period between communications with the management service, or a password complexity setting.
18. The method of claim 17 , wherein the policy strength score is calculated by assigning respective scores to a respective value for each of the plurality of security settings in the particular instance within the management service.
19. The method of claim 17 , wherein the policy strength score is calculated by assigning a respective weight to the respective scores for the respective value for each of the plurality of security settings and summing the respective scores.
20. The method of claim 15 , wherein the at least one cluster of instances are generated by identifying respective instances having respective policy strength scores within a respective cluster range.
Unknown
February 23, 2021
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.